Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/F0EsAV96FJBVa9Qmgj0Ush50RRM.roa
File: F0EsAV96FJBVa9Qmgj0Ush50RRM.roa (raw, json)
Hash identifier: 17EowFuWcUITHk/MbsNmiqNman1N7Wx6YxAisL0Fzwg=
Subject key identifier: 17:41:2C:01:5F:7A:14:90:55:6B:D4:26:82:3D:14:B2:1E:74:45:13
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 01960FD5C5D53339C1E4D369F5982FD36477
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/F0EsAV96FJBVa9Qmgj0Ush50RRM.roa
Signing time: Mon 07 Apr 2025 10:39:50 +0000
ROA not before: Mon 07 Apr 2025 10:39:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48955
IP address blocks: 80.96.18.0/23 maxlen: 23
80.96.70.0/23 maxlen: 24
80.96.100.0/23 maxlen: 23
81.180.108.0/23 maxlen: 23
81.180.139.0/24 maxlen: 24
81.181.162.0/23 maxlen: 23
81.181.174.0/24 maxlen: 24
85.120.45.0/24 maxlen: 24
85.122.60.0/23 maxlen: 23
85.122.85.0/24 maxlen: 24
194.102.216.0/24 maxlen: 24
217.156.32.0/24 maxlen: 24
217.156.91.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:0f:d5:c5:d5:33:39:c1:e4:d3:69:f5:98:2f:d3:64:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Apr 7 10:39:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=17412c015f7a1490556bd426823d14b21e744513
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:f4:9a:41:72:b0:ff:2d:84:62:6f:63:5e:e4:
b8:a0:0e:f8:f8:9a:00:f5:06:fc:c4:8d:01:99:89:
60:9b:35:bc:af:d4:09:59:ef:ab:cf:47:3b:30:bd:
39:02:32:55:6c:45:a9:0f:63:9e:cc:08:74:82:69:
82:86:98:d9:de:3c:2b:cc:6e:c4:55:1c:27:08:1c:
77:6f:7e:db:20:92:5f:e1:eb:01:37:ba:a9:40:58:
80:56:45:32:23:05:36:93:82:fb:88:22:24:75:b9:
1f:d7:1e:1a:18:67:70:da:b0:6a:56:31:de:8d:3b:
3e:5a:a8:c7:44:91:f1:71:64:67:8b:07:b8:96:86:
99:72:76:b5:7e:43:d2:4f:3e:f6:59:33:2f:38:05:
77:b5:d1:78:91:e0:b4:5a:0a:ff:c3:eb:fb:fc:85:
63:4e:33:12:f5:b0:16:c9:b3:83:ad:19:6b:c7:c3:
a2:b3:31:c7:3d:4d:11:c7:64:40:66:da:0c:51:6e:
66:f8:bb:e2:fd:a8:93:70:7a:19:6b:a6:a1:a1:29:
3f:06:8c:7c:a2:c5:73:a4:ac:f2:1a:df:b3:b1:88:
00:57:ac:95:57:33:a6:b9:1a:f1:6c:36:ba:a5:a0:
39:f4:b5:eb:e5:84:4a:77:b8:f4:67:f1:f9:9e:e9:
b7:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:41:2C:01:5F:7A:14:90:55:6B:D4:26:82:3D:14:B2:1E:74:45:13
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/F0EsAV96FJBVa9Qmgj0Ush50RRM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.96.18.0/23
80.96.70.0/23
80.96.100.0/23
81.180.108.0/23
81.180.139.0/24
81.181.162.0/23
81.181.174.0/24
85.120.45.0/24
85.122.60.0/23
85.122.85.0/24
194.102.216.0/24
217.156.32.0/24
217.156.91.0/24
Signature Algorithm: sha256WithRSAEncryption
43:71:cb:61:e2:62:36:9c:99:e8:57:38:f4:b9:ee:94:04:2c:
7a:3c:a7:f5:ea:68:d9:17:fc:79:f6:e2:d6:2b:52:8f:18:34:
6e:34:84:57:fc:54:8b:4d:8f:c2:ac:4f:44:d2:fc:2f:7a:5d:
3e:fa:1a:2d:7d:a2:66:36:37:00:bb:8b:da:75:09:21:5c:aa:
9a:56:34:87:55:2e:b1:20:90:6d:f0:5c:fd:b0:74:bf:92:f1:
a8:24:21:6a:82:a7:f0:f8:23:8d:e0:71:30:f9:5d:90:4a:81:
06:94:ed:66:a4:16:6c:3a:81:7c:3d:17:0b:f5:8b:31:f9:d5:
a2:7b:ff:d8:f6:97:b1:1a:dc:3e:d7:4c:fb:ea:5f:52:26:0c:
0f:35:d5:80:51:b1:04:7a:2e:a1:b1:a0:b9:e4:11:2d:b1:73:
e0:85:ff:87:87:c6:ef:01:04:67:b1:d5:2b:21:83:b9:45:80:
35:1a:c4:04:0d:c1:4b:99:9b:f5:ce:69:03:70:85:e0:ee:be:
b0:e3:de:93:48:76:93:83:8e:a2:87:e1:e9:34:24:ab:df:8d:
3b:76:09:b4:be:3b:91:32:33:4d:ab:c4:0b:20:e7:ee:4d:50:
b4:8f:12:f6:13:92:6c:87:5a:3d:2d:7e:f4:11:14:ca:a8:0f:
15:16:95:af
-----BEGIN CERTIFICATE-----
MIIFRTCCBC2gAwIBAgISAZYP1cXVMznB5NNp9Zgv02R3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxODM3ODU5MTZjZDk4ZDdjNzcwZDY4NTE0NTQ5OWE4YTBh
MTU3MjIwHhcNMjUwNDA3MTAzOTUwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNzQxMmMwMTVmN2ExNDkwNTU2YmQ0MjY4MjNkMTRiMjFlNzQ0NTEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq/SaQXKw/y2EYm9jXuS4oA74+JoA
9Qb8xI0BmYlgmzW8r9QJWe+rz0c7ML05AjJVbEWpD2OezAh0gmmChpjZ3jwrzG7E
VRwnCBx3b37bIJJf4esBN7qpQFiAVkUyIwU2k4L7iCIkdbkf1x4aGGdw2rBqVjHe
jTs+WqjHRJHxcWRniwe4loaZcna1fkPSTz72WTMvOAV3tdF4keC0Wgr/w+v7/IVj
TjMS9bAWybODrRlrx8OiszHHPU0Rx2RAZtoMUW5m+Lvi/aiTcHoZa6ahoSk/Box8
osVzpKzyGt+zsYgAV6yVVzOmuRrxbDa6paA59LXr5YRKd7j0Z/H5num39QIDAQAB
o4ICUTCCAk0wHQYDVR0OBBYEFBdBLAFfehSQVWvUJoI9FLIedEUTMB8GA1UdIwQY
MBaAFDGDeFkWzZjXx3DWhRRUmaigoVciMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTVlONFdSYk5tTmZIY05hRkZGU1pxS0NoVnlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS83MTkzZGItN2Y4NS00MmJiLWIwOWEt
ZjUyYzQ3YzIyNWRiLzEvRjBFc0FWOTZGSkJWYTlRbWdqMFVzaDUwUlJNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS83MTkzZGItN2Y4NS00MmJiLWIwOWEtZjUyYzQ3YzIyNWRi
LzEvTVlONFdSYk5tTmZIY05hRkZGU1pxS0NoVnlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGcGCCsGAQUFBwEHAQH/BFgwVjBUBAIAATBOAwQBUGASAwQB
UGBGAwQBUGBkAwQBUbRsAwQAUbSLAwQBUbWiAwQAUbWuAwQAVXgtAwQBVXo8AwQA
VXpVAwQAwmbYAwQA2ZwgAwQA2ZxbMA0GCSqGSIb3DQEBCwUAA4IBAQBDccth4mI2
nJnoVzj0ue6UBCx6PKf16mjZF/x59uLWK1KPGDRuNIRX/FSLTY/CrE9E0vwvel0+
+hotfaJmNjcAu4vadQkhXKqaVjSHVS6xIJBt8Fz9sHS/kvGoJCFqgqfw+CON4HEw
+V2QSoEGlO1mpBZsOoF8PRcL9Ysx+dWie//Y9pexGtw+10z76l9SJgwPNdWAUbEE
ei6hsaC55BEtsXPghf+Hh8bvAQRnsdUrIYO5RYA1GsQEDcFLmZv1zmkDcIXg7r6w
496TSHaTg46ih+HpNCSr3407dgm0vjuRMjNNq8QLIOfuTVC0jxL2E5Jsh1o9LX70
ERTKqA8VFpWv
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:05 2025 by rpki-client on console.sobornost.net